Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-6111

An exploitable denial-of-service vulnerability exists in the IPv4 functionality of Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 16.000, Series B FRN 15.002, Series B FRN 15.000, Series B FRN 14.000, Series B FRN 13.000, Series B FRN 12.000, Series B FRN 11.000 and Series B FRN 10.000. A specially crafted packet can cause a major error, resulting in a denial of service. An attacker can send a malicious packet to trigger this vulnerability.

Published

2020-12-03T13:15:10.477

Last Modified

2024-11-21T05:35:07.760

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: PARTIAL
Exploitability Score

10.0

Impact Score

2.9

Weaknesses
  • Type: Secondary
    CWE-189
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System rockwellautomation micrologix_1100_b_firmware 10.000 Yes
Operating System rockwellautomation micrologix_1100_b_firmware 11.000 Yes
Operating System rockwellautomation micrologix_1100_b_firmware 12.000 Yes
Operating System rockwellautomation micrologix_1100_b_firmware 13.000 Yes
Operating System rockwellautomation micrologix_1100_b_firmware 14.000 Yes
Operating System rockwellautomation micrologix_1100_b_firmware 15.000 Yes
Operating System rockwellautomation micrologix_1100_b_firmware 15.002 Yes
Operating System rockwellautomation micrologix_1100_b_firmware 16.000 Yes
Hardware rockwellautomation micrologix_1100 - No
References